d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
75,865 Commits 4 Branches 49 Tags
Commit Graph

1216 Commits

Author SHA1 Message Date
brian
be443b894f Add a missing ``a''. 2002-06-03 21:36:20 +00:00
brian
f1bf75d03d Don't send a RAD_NAS_IP_ADDRESS attribute as RAD_NAS_IDENTIFIER is 
sufficient.

In fact, using both breaks the radiator RADIUS daemon when used with
a db as it maps both attributes to the same field value and then
fails the insert.

I decided to remove RAD_NAS_IP_ADDRESS on the basis that rfc2138 says:

      An Access-Request MUST contain a User-Name attribute.  It SHOULD
      contain either a NAS-IP-Address attribute or NAS-Identifier
      attribute (or both, although that is not recommended).  It MUST

despite the fact that this not recommended bit was removed from the
updated rfc.
 2002-06-02 14:27:02 +00:00
brian
6fc921d693 Coerce pid_t to long rather than int for better portability. 
Suggested by: Theo de Raadt <deraadt@openbsd.org>
 2002-05-27 23:19:53 +00:00
brian
debad274d2 Increase the maximum FSM option length to 50 2002-05-22 21:17:13 +00:00
brian
e2e6ae2d7a Add some missing #includes that weren't required due to namespace polution 
in our headers.

Submitted by: bde
 2002-05-22 21:08:58 +00:00
brian
d6c7357cf3 Mention our support of the authentication side of rfc2548 2002-05-21 10:54:07 +00:00
brian
d2110d3eba Document RAD_MICROSOFT_MS_CHAP2_SUCCESS. 2002-05-18 23:58:15 +00:00
brian
3c3efb7e19 Put back <string.h> 2002-05-17 00:44:54 +00:00
brian
a821e645fa Add some OpenBSD includes 2002-05-16 14:47:19 +00:00
brian
098eb79132 Fix a mis-placed #else/#endif 2002-05-16 14:28:32 +00:00
brian
6efbe1505f Handle MS-CHAPv2 authentication correctly via the RADIUS server (if it's 
configured).
Handle internal failures in radius_Authenticate() correctly.
Bump the ppp version number.

This doesn't yet work with MPPE.  More will follow.

Sponsored by: Mozoon
 2002-05-16 13:34:20 +00:00
brian
06388d2280 Fix an include for NetBSD 2002-05-14 17:50:25 +00:00
brian
09439a23da Avoid a rather bizarre warning from gcc 3.1: 
/usr/src/usr.sbin/ppp/cbcp.c:566:61: warning: trigraph ??! ignored
 2002-05-14 13:32:30 +00:00
brian
c2da7c8697 o Clean up some #includes 
o Bump version number to 3.0.4
o When talking to a RADIUS server, provide a NAS-Port-Type.

  When the NAS-Port-Type is Ethernet, provide a NAS-Port value equal
  to the SESSIONID from the environment in direct mode or the
  NGM_PPPOE_SESSIONID message in other modes.  If no SESSIONID is found,
  default to the interface index in client mode or zero in server mode.

  When the NAS-Port-Type is ISDN, set the NAS-Port to the minor number
  of the physical device (ie, the N in /dev/i4brbchN).

  This makes it easier for the RADIUS server to identify the client
  WRT accounting data etc.

Prompted by:	lsz8425 <lsz8425@mail.cd.hn.cn>
 2002-05-14 12:55:39 +00:00
brian
def93d7c3c Calculate the number of open links properly when deciding on whether to 
just send PROTO_IP packets when we've got only one link up in multi-link
mode.

Problem noted by:	Adrian Close <adrian@fernhilltec.com.au>
MFC after:		1 week
 2002-05-14 00:59:28 +00:00
brian
f9345cd242 Fix a syntax error 2002-05-13 20:25:47 +00:00
brian
e7542a26ed We don't need to include arpa/inet.h here. In fact, only FreeBSD needs 
netinet/in.h.
 2002-05-11 17:04:01 +00:00
brian
80f4fb7cc7 #include netinet/in.h when !__FreeBSD__ to silence some warnings from 
the inclusion of arpa/inet.h
 2002-05-11 10:54:45 +00:00
brian
02509bfc4b NetBSD keeps des.h in /usr/include/openssl these days 2002-05-11 03:47:15 +00:00
brian
1947582c12 Add support for MS-CHAP authentication via a RADIUS server. 
Add support for Reply-Message and MS-CHAP-Error.

Sponsored by:	Monzoon
 2002-05-10 03:11:35 +00:00
brian
87ffeeba8e Don't corrupt MP fragments when they're put back on the front of our 
inbound queue.

Submitted by:	"Amit K. Rao" <arao@niksun.com>
PR:		37813
MFC after:	1 week

Also fix a typo while I'm here.
 2002-05-07 12:48:45 +00:00
brian
920f339ee0 Understand the Session-Timeout RADIUS attribute 
Store the Filter-Id attribute (we don't do anything with it yet)

Submitted mostly by: andrew pavlov <and@kremenchug.net>
 2002-05-07 10:06:54 +00:00
brian
7bc3ad5ab7 Tweak a data type from char * to u_char * 2002-05-04 21:47:43 +00:00
brian
e2ff55c530 Make ``set mru'' require a context. In multi-link mode, there's no 
point in being allowed to ``set mru'' for the MP lcp layer.

Spotted by:	Richard Browne <richb@timestone.com.au>
MFC after:	1 month
 2002-05-04 19:38:43 +00:00
brian
d6c25b14c5 Bump the version to mark the fixed FSM TLD ordering 2002-05-01 10:08:10 +00:00
brian
e9f489edca If we receive a config request while Open, call TLD *before* decoding 
the request as TLD may initialise fields that are set when decoding the
request.

MFC after:	1 week
 2002-05-01 10:04:49 +00:00
brian
e8c453a543 Allow the peer to modify the LQR interval 2002-05-01 07:49:07 +00:00
des
4d6b787d2d Usage style sweep: spell "usage" with a small 'u'. 
Also change one case of blatant __progname abuse (several more remain)
This commit does not touch anything in src/{contrib,crypto,gnu}/.
 2002-04-22 13:44:47 +00:00
brian
734c0c9c89 Don't load the netgraph line discipline. When it's in use, TIOCMGET 
fails and on loss of carrier, the device doesn't become selectable with
0 bytes to read.

Problem reported by: ache
 2002-04-21 02:00:29 +00:00
brian
f57b9edeb5 Add variable substitutions for SOCKNAME, IPOCTETSIN, IPOCTETSOUT, IPPACKETSIN, 
IPPACKETSOUT, IPV6OCTETSIN, IPV6OCTETSOUT, IPV6PACKETSIN, IPV6PACKETSOUT,
OCTETSIN, OCTETSOUT, PACKETSIN, PACKETSOUT and SOCKNAME.
 2002-04-17 12:38:59 +00:00
brian
f84972208c Don't display an extraneous ``: '' with some packets in/packets out diagnostics 2002-04-16 23:57:21 +00:00
brian
b86a2d03f8 Make the way FSM options are processed easier to read by using structures 
instead of u_char *.

The changes are cosmetic except:

  RecvConfigAck() now displays the options that are being ACK'd
  Huge (bogus) options sent from the peer won't cause an infinite loop
  SendIdent and ReceiveIdent are displayed consistenlty with other FSM data
  LCP AUTHPROTO options that aren't understood are NAK'd, not REJ'd
 2002-04-16 23:57:09 +00:00
brian
99e79d7fa0 When it's necessary to kldload tun(4), don't forget to re-try to open 
tun0.

Submitted by:	qhwt@myrealbox.com
 2002-04-15 00:14:40 +00:00
hosokawa
cce077344b Get tun P2P address from the local pool if RADIUS server returned 
255.255.255.254 as client ipaddr.

Reviewed-By:	freebsd-net mailing list
 2002-04-04 08:43:00 +00:00
brian
5e89c7151f Fix a typo 2002-03-31 01:57:06 +00:00
brian
ab4711b90a Add a missing ``#ifndef NONETGRAPH'' 2002-03-31 01:56:34 +00:00
brian
b222d9573a Remove some extraneous whitespace 2002-03-31 01:51:15 +00:00
brian
05e0b92acd Include arpa/inet.h 2002-03-31 01:36:08 +00:00
ru
ea17e5024d Fix CLEANFILES. 2002-03-30 17:57:51 +00:00
brian
631238220a Add a sprinkling of mp_Down() calls to ensure that we don't think that 
the multi-link NCP is up when it isn't.
 2002-03-30 12:52:55 +00:00
brian
4aad533fbf Don't use the RTF_GATEWAY flag and pass the RTA_GATEWAY address when updating 
routes.
 2002-03-30 12:50:49 +00:00
brian
1dda0c6402 Add a missing break 2002-03-30 12:47:29 +00:00
brian
ee9763124d Merge the NETGRAPH branch into HEAD. tty devices now use netgraph's line 
discipline to do the async escaping, but no other benefits are available yet.

Change ``ifdef HAVE_DES'' to ``ifndef NODES'' for consistency.

Make the Makefile a little more sane WRT RELEASE_CRUNCH.
 2002-03-30 12:30:09 +00:00
brian
a80a96a3d8 Fix a typo 
Submitted by:	dirk
 2002-03-25 14:14:31 +00:00
ru
fbd982bb93 mdoc(7) police: .Va -> .Ev. 2002-03-15 17:03:05 +00:00
brian
783a07fdf2 Use the return value from snprintf() to keep a track of the length of 
the display string in MPPEDispOpts.

PR:		35836
MFC After:	2 weeks
 2002-03-13 10:21:19 +00:00
brian
e3b5feb1f5 Handle B460800 and B921600 being defined in <termios.h> 2002-03-12 16:05:26 +00:00
brian
ca8983659d Don't drop the last character from ut_line in ID0logout(). 
PR:		35531
MFC after:	2 weeks
 2002-03-05 13:03:11 +00:00
brian
e1efcab9b5 Don't blow away ``set escape'' settings when we've completed the 
login phase.  Just initialise the correct parts.

Originially submitted by:	Vladimir B. Machulsky <bofhmail@yahoo.com>
 2002-03-04 10:08:57 +00:00
brian
9e9f75c5de Document NGM_PPPOE_ACNAME handling. 2002-02-20 15:53:47 +00:00